apache 图片防盗连接
时间:2007-12-25 来源:fsm11
我的后台日志每天受到如下日志:
################### LogWatch 5.2.2 (06/23/04) ####################
Processing Initiated: Tue Dec 25 04:02:08 2007
Date Range Processed: yesterday
Detail Level of Output: 0
Logfiles for Host: localhost.localdomain
################################################################ --------------------- httpd Begin ------------------------ Connection attempts using mod_proxy:
122.126.111.4 -> mail2.xps.idv.tw:25 : 14 Time(s)
122.126.111.4 -> mail3.xps.idv.tw:25 : 12 Time(s) A total of 520 unidentified 'other' records logged
GET /bbs_topic.do?forumID=9&postID=707 HTTP/1.1 with response code(s) 200 2 responses
HEAD /bbs_topic.do?forumID=9&postID=191&replyID=192&skin=1&pages=1 HTTP/1.1 with response code(s) 200 1 responses
GET /bbs_main_topic.do?forumID=7&postID=115&pages=1 HTTP/1.1 with response code(s) 200 1 responses
GET /bbs_topic.do?forumID=13&postID=179&replyID=212&skin=1&pages=1 HTTP/1.0 with response code(s) 200 1 responses
GET /bbs_forum.do?forumID=7 HTTP/1.1 with response code(s) 200 2 responses
GET /bbs_main_topic.do?forumID=2&postID=698&pages=1 HTTP/1.0 with response code(s) 200 1 responses
GET /bbs_topic.do?forumID=13&postID=178&pages=1 HTTP/1.1 with response code(s) 200 2 responses
GET /bbs_forum.do?forumID=1&readFlag=0&pages=2 HTTP/1.1 with response code(s) 200 3 responses
GET /bbs_topic.do?forumID=2&postID=250&replyID=0&skin=1&saveSkin=true&pages=0&replyNum= HTTP/1.0 with response code(s) 200 1 responses
GET /bbs_topic.do?forumID=1&postID=274&pages=1 HTTP/1.1 with response code(s) 200 1 responses
GET /bbs_downloadAttachment.do?fileName=2007/9/18/24_20.jpg HTTP/1.1 with response code(s) 200 1 responses
GET /bbs_topic.do?forumID=10&postID=132 HTTP/1.0 with response code(s) 200 1 responses
GET /bbs_main_topic.do?forumID=2&postID=770&pages=1 HTTP/1.1 with response code(s) 200 1 responses
HEAD /bbs_topic.do?forumID=1&postID=170&replyID=0&skin=1&saveSkin=true&pages=1&replyNum= HTTP/1.1 with response code(s) 200 1 responses
GET /bbs_topic.do?forumID=2&postID=70&pages=1 HTTP/1.1 with response code(s) 200 1 responses
GET /bbs_topic.do?forumID=9&postID=693 HTTP/1.1 with response code(s) 200 1 responses
GET /admin/editor/db/ewebeditor.mdb HTTP/1.1 with response code(s) 404 1 responses
GET /bbs_topic.do?forumID=1&postID=198 HTTP/1.0 with response code(s) 200 2 responses
GET /bbs_topic.do?forumID=5&postID=90 HTTP/1.1 with response code(s) 200 1 responses
GET /bbs_forum.do?forumID=14 HTTP/1.1 with response code(s) 200 2 responses
HEAD /bbs_topic.do?forumID=3&postID=361 HTTP/1.1 with response code(s) 200 1 responses
GET /bbs_topic.do?forumID=1&postID=278&pages=1 HTTP/1.1 with response code(s) 200 1 responses
GET /bbs_main_topic.do?forumID=2&postID=718&pages=1 HTTP/1.0 with response code(s) 200 1 responses GOOGLE了好久,都没有解决这个问题,今天上网GOOGLE下“unidentified 'other' records logged” 这个东西,结果出来一大把,貌似图片被盗连接了,想想估计也是,这台服务器就是提供图片的服务器,其他的服务器就没这个问题。在我的虚拟机下面加入如下设置,看看明天再有这个日志信息没: SetEnvIfNoCase Referer "^http://.*\.apache\.com/" local_ref=1
SetEnvIfNoCase Referer ".*\.apache\.com" local_ref=1
<FilesMatch "\.(gif|jpg|png)">
Order Allow,Deny
Allow from env=local_ref
Allow from 127.0.0.1
</FilesMatch> 测试了一下,图片服务器访问正常,看看明天再有这个错没。 参考网址: http://www.centos.org/modules/newbb/viewtopic.php?topic_id=8120 http://blog.chinaunix.net/u/1/showart_111547.html
Processing Initiated: Tue Dec 25 04:02:08 2007
Date Range Processed: yesterday
Detail Level of Output: 0
Logfiles for Host: localhost.localdomain
################################################################ --------------------- httpd Begin ------------------------ Connection attempts using mod_proxy:
122.126.111.4 -> mail2.xps.idv.tw:25 : 14 Time(s)
122.126.111.4 -> mail3.xps.idv.tw:25 : 12 Time(s) A total of 520 unidentified 'other' records logged
GET /bbs_topic.do?forumID=9&postID=707 HTTP/1.1 with response code(s) 200 2 responses
HEAD /bbs_topic.do?forumID=9&postID=191&replyID=192&skin=1&pages=1 HTTP/1.1 with response code(s) 200 1 responses
GET /bbs_main_topic.do?forumID=7&postID=115&pages=1 HTTP/1.1 with response code(s) 200 1 responses
GET /bbs_topic.do?forumID=13&postID=179&replyID=212&skin=1&pages=1 HTTP/1.0 with response code(s) 200 1 responses
GET /bbs_forum.do?forumID=7 HTTP/1.1 with response code(s) 200 2 responses
GET /bbs_main_topic.do?forumID=2&postID=698&pages=1 HTTP/1.0 with response code(s) 200 1 responses
GET /bbs_topic.do?forumID=13&postID=178&pages=1 HTTP/1.1 with response code(s) 200 2 responses
GET /bbs_forum.do?forumID=1&readFlag=0&pages=2 HTTP/1.1 with response code(s) 200 3 responses
GET /bbs_topic.do?forumID=2&postID=250&replyID=0&skin=1&saveSkin=true&pages=0&replyNum= HTTP/1.0 with response code(s) 200 1 responses
GET /bbs_topic.do?forumID=1&postID=274&pages=1 HTTP/1.1 with response code(s) 200 1 responses
GET /bbs_downloadAttachment.do?fileName=2007/9/18/24_20.jpg HTTP/1.1 with response code(s) 200 1 responses
GET /bbs_topic.do?forumID=10&postID=132 HTTP/1.0 with response code(s) 200 1 responses
GET /bbs_main_topic.do?forumID=2&postID=770&pages=1 HTTP/1.1 with response code(s) 200 1 responses
HEAD /bbs_topic.do?forumID=1&postID=170&replyID=0&skin=1&saveSkin=true&pages=1&replyNum= HTTP/1.1 with response code(s) 200 1 responses
GET /bbs_topic.do?forumID=2&postID=70&pages=1 HTTP/1.1 with response code(s) 200 1 responses
GET /bbs_topic.do?forumID=9&postID=693 HTTP/1.1 with response code(s) 200 1 responses
GET /admin/editor/db/ewebeditor.mdb HTTP/1.1 with response code(s) 404 1 responses
GET /bbs_topic.do?forumID=1&postID=198 HTTP/1.0 with response code(s) 200 2 responses
GET /bbs_topic.do?forumID=5&postID=90 HTTP/1.1 with response code(s) 200 1 responses
GET /bbs_forum.do?forumID=14 HTTP/1.1 with response code(s) 200 2 responses
HEAD /bbs_topic.do?forumID=3&postID=361 HTTP/1.1 with response code(s) 200 1 responses
GET /bbs_topic.do?forumID=1&postID=278&pages=1 HTTP/1.1 with response code(s) 200 1 responses
GET /bbs_main_topic.do?forumID=2&postID=718&pages=1 HTTP/1.0 with response code(s) 200 1 responses GOOGLE了好久,都没有解决这个问题,今天上网GOOGLE下“unidentified 'other' records logged” 这个东西,结果出来一大把,貌似图片被盗连接了,想想估计也是,这台服务器就是提供图片的服务器,其他的服务器就没这个问题。在我的虚拟机下面加入如下设置,看看明天再有这个日志信息没: SetEnvIfNoCase Referer "^http://.*\.apache\.com/" local_ref=1
SetEnvIfNoCase Referer ".*\.apache\.com" local_ref=1
<FilesMatch "\.(gif|jpg|png)">
Order Allow,Deny
Allow from env=local_ref
Allow from 127.0.0.1
</FilesMatch> 测试了一下,图片服务器访问正常,看看明天再有这个错没。 参考网址: http://www.centos.org/modules/newbb/viewtopic.php?topic_id=8120 http://blog.chinaunix.net/u/1/showart_111547.html
相关阅读 更多 +
